From 153aa061f01fca205e6cc2b3e9373765bc05374a Mon Sep 17 00:00:00 2001
From: Jesse Wierzbinski <contact@cpluspatch.com>
Date: Tue, 16 Jul 2024 20:17:35 +0200
Subject: [PATCH] ci: :construction_worker: Add new typecheck CI action

---
 .github/workflows/check.yml          | 31 ++++++++++++++++++++++++++++
 .github/workflows/codeql.yml         |  2 +-
 .github/workflows/docker-publish.yml |  2 +-
 .github/workflows/lint.yml           |  4 +---
 4 files changed, 34 insertions(+), 5 deletions(-)
 create mode 100644 .github/workflows/check.yml

diff --git a/.github/workflows/check.yml b/.github/workflows/check.yml
new file mode 100644
index 00000000..2b4422e7
--- /dev/null
+++ b/.github/workflows/check.yml
@@ -0,0 +1,31 @@
+name: Check Types
+
+on:
+  push:
+    branches: ["*"]
+  pull_request:
+    # The branches below must be a subset of the branches above
+    branches: ["main"]
+
+jobs:
+  tests:
+    runs-on: ubuntu-latest
+    permissions:
+      contents: read
+
+    steps:
+      - name: Checkout code
+        uses: actions/checkout@v4
+        with:
+          submodules: recursive
+
+      - name: Setup Bun
+        uses: oven-sh/setup-bun@v2
+
+      - name: Install NPM packages
+        run: |
+          bun install
+
+      - name: Run typechecks
+        run: |
+          bun run check
diff --git a/.github/workflows/codeql.yml b/.github/workflows/codeql.yml
index a211f894..84e26a2d 100644
--- a/.github/workflows/codeql.yml
+++ b/.github/workflows/codeql.yml
@@ -9,7 +9,7 @@
 # the `language` matrix defined below to confirm you have the correct set of
 # supported CodeQL languages.
 #
-name: "CodeQL"
+name: "CodeQL Scan"
 
 on:
     push:
diff --git a/.github/workflows/docker-publish.yml b/.github/workflows/docker-publish.yml
index e07c2003..b74a31a7 100644
--- a/.github/workflows/docker-publish.yml
+++ b/.github/workflows/docker-publish.yml
@@ -1,4 +1,4 @@
-name: Docker
+name: Docker Build
 
 on:
   push:
diff --git a/.github/workflows/lint.yml b/.github/workflows/lint.yml
index 06c83daa..d3fc054c 100644
--- a/.github/workflows/lint.yml
+++ b/.github/workflows/lint.yml
@@ -11,9 +11,7 @@ jobs:
   tests:
     runs-on: ubuntu-latest
     permissions:
-      contents: read
-      security-events: write
-      actions: read # only required for a private repository by github/codeql-action/upload-sarif to get the Action run status
+      contents: read                
 
     steps:
       - name: Checkout code